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Listing of Claims: 

1 . (Currently amended) A method of improving security processing in a computing 
network, comprising steps of : 

providing a security offload component in an operating system kernel which performs 
security processing; 

providing control functions in aft the operating system kernel for directing operation of 
the security offload component; 

providing an application program; 
executing the application program; and 

executing the provided control functions during execution of the application program, 
thereby selectably directing the security offload component to secure at least one communication 
of the executing application program. 

2. (Currently amended) The method according to Claim 1, wherein the executing 
control functions includ e comprises a function directing the security offload component to begin 
securing the communications. 

3. (Currently amended) The method according to Claim 1, wherein the executing 
control functions includ e comprises a function directing the security offload component to stop 
securing the communications. 

4. (Original) The method according to Claim 2, wherein the function further 
specifies information to be used by the security offload component. 

5. (Currently amended) The method according to Claim 4, wherein the specified 
information comprises on e or mor e at least one of: authentication information; cipher suites 
options; and security key input information. 
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6. (Original) The method according to Claim 1, wherein the control functions further 
inform protocol layers of the operating system kernel to modify outbound data in preparation for 
use by the security offload component. 

7. (Currently amended) The method according to Claim 6, wherein the 
modifications include comprise reserving space in the outbound data for security headers and 
trailers. 

8. (Currently amended) The method according to Claim 1, wherein the control 
functions include comprise providing at least one of client and/or server certificates to the 
security offload component for use in securing the communications. 

9. (Currently amended) The method according to Claim 1, wherein the control 
functions includ e comprise providing at least one key or key ring on e or mor e k e ys or k e y rings 
to the security offload component for use in securing the communications. 

10. (Currently amended) The method according to Claim 1, wherein the control 
functions include comprise providing an identification of a encryption algorithm to the security 
offload component for use in securing the communications. 

11. (Original) The method according to Claim 1, wherein secured outbound data of 
the executing application is thereby sent to its destination directly from the security offload 
component, after a single pass over a data bus from a protocol stack of the operating system 
kernel. 

12. (Currently amended) A system for improving security processing in a computing 
network, comprising: 

a security offload component in an operating system kernel which performs security 
processing; 
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at least one control function in an the operating system kernel for directing operation of 

the security offload component; 

means for executing the at least one provided control function; and 

means, responsive to operation of the means for executing, for directing the security 

offload component to secure at least one communication of an application program. 

13. (Currently amended) A computer program product for improving security 
processing in a computing network, the computer program product embodied on at least one of 
more computer-readable media and comprising: 

a security offload component in an operating system kernel which performs security 
processing; 

at least one control function in an the operating system kernel for directing operation of 
the security offload component; 

computer-readable program code m e ans for executing the at least one provided control 
function; and 

computer-readable program code m e ans , responsive to operation of the computer- 
readable program code m e ans for executing, for directing the security offload component to 
secure at least one communication of an application program. 

14. (New) The system according to Claim 12, wherein the means for executing 
comprises means for directing the security offload component to begin securing the 
communications. 

15. (New) The system according to Claim 12, wherein the means for executing 
comprises means for directing the security offload component to stop securing the 
communications. 

16. (New) The system according to Claim 12, wherein the at least one control 
function further informs protocol layers of the operating system kernel to modify outbound data 
in preparation for use by the security offload component. 
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17. (New) The system according to Claim 12, wherein secured outbound data of the 
application program is thereby sent to its destination directly from the security offload 
component, after a single pass over a data bus from a protocol stack of the operating system 
kernel. 

18. (New) The computer program product according to Claim 13, wherein the 
computer readable program code for executing comprises computer readable program code for 
directing the security offload component to begin securing the communications. 

19. (New) The computer program product according to Claim 13, wherein the 
computer readable program code for executing comprises computer readable program code for 
directing the security offload component to stop securing the communications. 

20. (New) The computer program product according to Claim 13, wherein the at least 
one control function further informs protocol layers of the operating system kernel to modify 
outbound data in preparation for use by the security offload component. 



